Hacked VPN100
All Replies
-
Hi,
We had the same problem with USG Flex 500 V5.37 - few times someone logged to device from WAN using built in admin and created another user with SSL VPN access, then he got to local network and logged via RDP to serwer using credentials saved in USG Flex for LDAP authentication. Could he retrieve that domain password from the device memory?
And what with built in admin? Is it some backdoor or I should worry that our passwords leaked somehow? There was no failed attempts in logs, just first successfull logon.
0
Freshman Member
Categories
- All Categories
- 415 Beta Program
- 2.5K Nebula
- 155 Nebula Ideas
- 105 Nebula Status and Incidents
- 5.9K Security
- 319 USG FLEX H Series
- 286 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.1K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 256 Service & License
- 398 News and Release
- 86 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.7K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 87 About Community
- 78 Security Highlight
